AWS

Download 48
Last updated Jun 6, 2022

aws-acm-certificates

Retrieves a list of certificate ARNs and domain names from AWS Certificate Manager.

aws-acm-certificates [profile=PROFILE] [region=REGION]
profile=PROFILE
The identifier of AWS connect profile
region=REGION
AWS region

AWS IAM Policy

To use this command, you must allow the below permissions in your AWS IAM policy.

  • acm:DescribeCertificate
  • acm:ListCertificates

Output Fields

FieldTypeNameDescription
aws_profileStringConnect profileThe identifier of AWS connect profile
regionStringRegione.g. ap-northeast-2
typeStringTypee.g. IMPORTED, AMAZON_ISSUED
domain_nameStringDomain nameMay include wildcard. e.g. ko.logpresso.com
statusStringStatuse.g. ISSUED
serialStringSeriale.g. f8:b6:44:3b:0d:4f:1a:31:8e:dd:10:ad:9b:a4:d6:f3
not_beforeDateNot before
not_afterDateNot after
cert_arnStringCertificate ARN
ca_arnStringCA ARN
created_atDateCreated at
failure_reasonStringFailure reason
imported_atDateImported at
in_use_byListIn use byElements with ARN which uses this certificate
issued_atDateIssued at
issuerStringIssuere.g. COMODO CA Limited, Amazon
key_algorithmStringKey algorithme.g. RSA-2048
renewal_eligibilityStringRenewal eligibilitye.g. INELIGIBLE, ELIGIBLE
revocation_reasonStringRevocation reason
revoked_atDateRevoked at
signature_algorithmStringSignature algorithme.g. SHA256WITHRSA
subject_alternative_namesListSubject alternative names
domain_validationsListDomain validationse.g. [ko.logpresso.com, www.ko.logpresso.com]
key_usagesStringKey usagese.g. [DIGITAL_SIGNATURE, KEY_ENCIPHERMENT]
extended_key_usagesStringExtended key usagesElements with oid and name properties